Manualshelf

3Com Switch 8800 Family IPsec Module Configuration and Command reference Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve 8116fl Redundant Switch Fabric Module
61626364656667686970
AAA and RADIUS/HWTACACS Protocol Configuration Example 61
# Configure the Telnet user to use AAA authentication.
[secblade] user-interface vty 0 4
[secblade-ui-vty0-4] authentication-mode scheme
# Configure the domain.
[secblade] domain cams
[secblade-isp-cams] access-limit enable 10
[secblade-isp-cams] accounting optional
[secblade-isp-cams] quit
# Configure the RADIUS scheme.
[secblade] hwtacacs scheme system
[secblade-hwtacacs-system] primary authentication 10.0.0.1 1812
[secblade-hwtacacs-system] primary accounting 10.0.0.1 1813
[secblade-hwtacacs-system] key authentication expert
[secblade-hwtacacs-system] key accounting expert
[secblade-hwtacacs-system] server-type 3Com
[secblade-hwtacacs-system] user-name-format with-domain
[secblade-hwtacacs-system] quit
# Configure to associate the domain with the TACACS.
[secblade] domain tacacs
[secblade-isp-tacacs] scheme tacacs-scheme system
4 Configure the TACACS server
Configure the IP address
Configure the shared key
Add username test@ tacacs
Enable one-time authentication
5 Login procedure
Configure one-time password authentication for Telnet users as follows:
Figure 12 Telnet user login interface
Step 1: Type username test@tacacs.